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^ (57) Abstract: The invention relates to a method for managing application security carried out with the aid of a security module 
^ associated with mobile equipment. The inventive method authenticates at least one application (APP) functioning in equipment (CB) 
which is connected by a network (NET) to a control server (CSE), said equipment (CB) being locally connected to a security module 
ff>^ (SIM), said application (APP) being loaded and/or run by means of an application running environment (AEE) for the equipment 
\© (CB) and utilizing resources (RES) stored in the security module (SIM), comprising the following preliminary stages: receipt of data 
fS comprising at least one identifier (IMEISV) of the equipment (CB) and the identifier (IMSI) of the security module (SIM), via the 
network (NET), by the control server (CSE); analysis and verification by the control server (CSE) of said data; generation of a cryp- 
togram (CRY) comprising an application (APP) imprint (FINI) of data identifying the equipment (CB) and the security module (SIM) 
and instructions (INS RES) for said module; transmission of the cryptogram(CRY), via the network (NET) and equipment (CB), 
to the security module (SIM); verification of the application (APP) by comparing the imprint (FINI) extracted from the cryptogram 
^5 (CRY) received with an imprint (FIN2) which is determined by the security module (SIM). The inventive method is characterized in 
that, during initialization and/or activation of the application (APP), the security module (SIM) carries out the instructions (INS RES) 
extracted from the cryptogram (CRY) and releases or respectively blocks access to certain resources (RES) of said security module 
W (SIM) according to the result of the verification, which is proper to said application (APP) and which was previously carried out 
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En ce qui concerne les codes a deux lettres et autres abrivia- 
tions y se rejerer aux "Notes explicatives relatives aux codes et 
abrSviations" figurant au debut de chaque numero ordinaire de 
la Gazette du PCT 



(57) Abrege : Le but de la pr6sente invention est de proposer une methode la gestion de la security duplications mise en oeuvre avec 
un module de securite assorie a un equipement mobile. Ce but est atteint par une methode d'authentification d'au moins une applica- 
tion (APP) fonctionnant dans un equipement (CB) connecte par un reseau (NET) a un serveur de controle (CSE), ledit equipement 
(CB) etant local ement connecte a un module de securite (SIM), ladite application (APP) est chargee et/ou executee au moyen d'un 
environnement d'execution d'applications (AEE) de l'equipement (CB) et utilise des ressources (RES) stockees dans le module de 
securite" (SIM), comprenant les e tapes preliminaires suivantes: reception de donnees comprenant au moins l'identiflant (IMEISV) de 
l'equipement (CB) et l'idennfiant (IMSI) du module de securite" (SIM), via le r£seau (NET), par le serveur de controle (CSE) analyse 
et verification par le serveur de controle (CSE) desdites donnees, g6n6ration d'un crypto gramme (CRY) comprenant une empreinte 
(FINI) de 1 'application (APP), des donnees identifiant l'equipement (CB) et le module de security (SIM) et des instructions (INS 
RES) destinees audit module, transmission dudit cryptogramme (CRY), via le ieseau (NET) et l'equipement (CB), au module de 
security (SIM), verification de l'application (APP) en comparant rempreinte (FINI) extraite du cryptogramme (CRY) recu avec une 
empreinte (FTN2) d^terminee par le module de securite (SIM), ladite methode est caractdrisee en ce que, lors de 1'initiabsation et/ou 
de 1'activation de l'application (APP), le module de security (SIM) execute les instructions (INS RES) extraites du cryptogramme 
(CRY) et libere, respectivement bloque 1'acces a certaines ressources (RES) dudit module de security (SIM) en fonction du resultat 
de la verification propre a cette application (APP) effectuee prealablemenL 



